Improper Restriction of XML External Entity Reference
The package glances are vulnerable to XML External Entity (XXE) Injection via the use of Fault to parse untrusted XML data, which is known to be vulnerable to XML attacks.
Advisories for Pypi/Glances package
2021